admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2009/4xxx/CVE-2009-4018.json
CVE Team 33ba00fba0
"-Synchronized-Data."
2023-02-13 02:02:16 +00:00

138 lines
5.5 KiB
JSON
Raw Blame History

{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ID": "CVE-2009-4018",
"ASSIGNER": "secalert@redhat.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "The proc_open function in ext/standard/proc_open.c in PHP before 5.2.11 and 5.3.x before 5.3.1 does not enforce the (1) safe_mode_allowed_env_vars and (2) safe_mode_protected_env_vars directives, which allows context-dependent attackers to execute programs with an arbitrary environment via the env parameter, as demonstrated by a crafted value of the LD_LIBRARY_PATH environment variable."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "n/a"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "http://www.php.net/ChangeLog-5.php",
"refsource": "MISC",
"name": "http://www.php.net/ChangeLog-5.php"
},
{
"url": "http://secunia.com/advisories/41480",
"refsource": "MISC",
"name": "http://secunia.com/advisories/41480"
},
{
"url": "http://secunia.com/advisories/41490",
"refsource": "MISC",
"name": "http://secunia.com/advisories/41490"
},
{
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995",
"refsource": "MISC",
"name": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995"
},
{
"url": "http://marc.info/?l=bugtraq&m=127680701405735&w=2",
"refsource": "MISC",
"name": "http://marc.info/?l=bugtraq&m=127680701405735&w=2"
},
{
"url": "http://secunia.com/advisories/40262",
"refsource": "MISC",
"name": "http://secunia.com/advisories/40262"
},
{
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:303",
"refsource": "MISC",
"name": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:303"
},
{
"url": "http://bugs.php.net/bug.php?id=49026",
"refsource": "MISC",
"name": "http://bugs.php.net/bug.php?id=49026"
},
{
"url": "http://marc.info/?l=oss-security&m=125886770008678&w=2",
"refsource": "MISC",
"name": "http://marc.info/?l=oss-security&m=125886770008678&w=2"
},
{
"url": "http://marc.info/?l=oss-security&m=125897935330618&w=2",
"refsource": "MISC",
"name": "http://marc.info/?l=oss-security&m=125897935330618&w=2"
},
{
"url": "http://svn.php.net/viewvc/?view=revision&revision=286360",
"refsource": "MISC",
"name": "http://svn.php.net/viewvc/?view=revision&revision=286360"
},
{
"url": "http://svn.php.net/viewvc/php/php-src/branches/PHP_5_2/ext/standard/proc_open.c?r1=286360&r2=286359&pathrev=286360",
"refsource": "MISC",
"name": "http://svn.php.net/viewvc/php/php-src/branches/PHP_5_2/ext/standard/proc_open.c?r1=286360&r2=286359&pathrev=286360"
},
{
"url": "http://svn.php.net/viewvc/php/php-src/branches/PHP_5_3/ext/standard/proc_open.c?r1=286360&r2=286359&pathrev=286360",
"refsource": "MISC",
"name": "http://svn.php.net/viewvc/php/php-src/branches/PHP_5_3/ext/standard/proc_open.c?r1=286360&r2=286359&pathrev=286360"
},
{
"url": "http://www.openwall.com/lists/oss-security/2009/11/23/15",
"refsource": "MISC",
"name": "http://www.openwall.com/lists/oss-security/2009/11/23/15"
},
{
"url": "http://www.securityfocus.com/bid/37138",
"refsource": "MISC",
"name": "http://www.securityfocus.com/bid/37138"
},
{
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7256",
"refsource": "MISC",
"name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7256"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink